Bridge Opt1 with LAN - FireWall Rules



  • I'm bridging Opt1 with the LAN.  Do I need to duplicate the firewall rules on LAN on Opt1 to facilitate the same level of access or is there a clever solution out there?

    Thanks in advance
    –Seth



  • Any guidance?



  • AFAIK you'll need to duplicate the rules.



  • @Seth:

    I'm bridging Opt1 with the LAN.  Do I need to duplicate the firewall rules on LAN on Opt1 to facilitate the same level of access or is there a clever solution out there?

    Thanks in advance
    –Seth

    i don't think u need a duplicate rules.. let me try.. my topology like this
    we have a similar condition because i'm using bridge to..
    router –--> Pfsense ----> switch ------> client
    my router have 5 interface (LAN,wi-fi,voip,smartcard,ISP)
    PF sense have 4 interface(LAN and bridgeLAN + WAN and Bridgewifi)
    i'm deploy the rules that LAN cannot connect wi-fi
    so i'm put the rules on LAN to keep the QoS in a good way..
    and u don't need to put the same rules on ur wi-fi interface.. to block the same rules.. because it's already block..



  • iamthed: Seths question reformulated is:
    If i have LAN and OPT1. Then bridge OPT1 with LAN.
    Do i need to duplicate the rules on the LAN on the OPT1 interface to have on the OPT1 interface the same outbound (to the internet) behaviour than on the LAN interface.
    This has nothing to do with QoS… This is not about allowing onedirection traffic.

    The answer is: Yes you need the same rules on the OPT1 interface as on the LAN.
    I think with clever alias usage the number of rules in place can be minimized and thus lower the administration effort.


Log in to reply